CVE-2023-5629

A CWE-601:URL Redirection to Untrusted Site (‘Open Redirect’) vulnerability exists that could cause disclosure of information through phishing attempts over HTTP.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:schneider-electric:eb450_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:eb450:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:schneider-electric:eb45e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:eb45e:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:schneider-electric:eh450_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:eh450:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:schneider-electric:eh45e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:eh45e:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:schneider-electric:er450_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:er450:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:schneider-electric:er45e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:er45e:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:schneider-electric:jr240_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:jr240:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:schneider-electric:jr900_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:jr900:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:schneider-electric:qr450_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qr450:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:schneider-electric:qr150_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qr150:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:schneider-electric:qb450_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qb450:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:schneider-electric:qb150_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qb150:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:schneider-electric:qp450_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qp450:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:schneider-electric:qp150_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qp150:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:schneider-electric:qh450_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qh450:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:schneider-electric:qh150_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qh150:-:*:*:*:*:*:*:*

History

27 Dec 2023, 18:45

Type Values Removed Values Added
CPE cpe:2.3:o:schneider-electric:jr900_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:qr450_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:qp450_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:er45e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:qr150_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:jr240_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qb150:-:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:eb45e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:jr900:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:eb450:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:jr240:-:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:qh450_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:eh45e:-:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:qb450_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:eh45e_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qp150:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:er45e:-:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:qb150_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:qh150_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:er450:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qh450:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qr450:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qp450:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:eh450:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qr150:-:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:qp150_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:er450_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:eb45e:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qb450:-:*:*:*:*:*:*:*
cpe:2.3:h:schneider-electric:qh150:-:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:eb450_firmware:-:*:*:*:*:*:*:*
cpe:2.3:o:schneider-electric:eh450_firmware:-:*:*:*:*:*:*:*
References () https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-346-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-346-01.pdf - () https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-346-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-346-01.pdf - Vendor Advisory
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.1
First Time Schneider-electric qb150
Schneider-electric jr900 Firmware
Schneider-electric qp150 Firmware
Schneider-electric er450 Firmware
Schneider-electric qh450
Schneider-electric er450
Schneider-electric jr900
Schneider-electric qb450 Firmware
Schneider-electric qh150 Firmware
Schneider-electric qp150
Schneider-electric qr450
Schneider-electric eh45e Firmware
Schneider-electric qr450 Firmware
Schneider-electric
Schneider-electric jr240
Schneider-electric eb450 Firmware
Schneider-electric qp450 Firmware
Schneider-electric qr150
Schneider-electric qh150
Schneider-electric qb150 Firmware
Schneider-electric eh450
Schneider-electric er45e Firmware
Schneider-electric qp450
Schneider-electric jr240 Firmware
Schneider-electric eh450 Firmware
Schneider-electric eh45e
Schneider-electric eb450
Schneider-electric er45e
Schneider-electric qh450 Firmware
Schneider-electric eb45e
Schneider-electric qr150 Firmware
Schneider-electric qb450
Schneider-electric eb45e Firmware

14 Dec 2023, 13:52

Type Values Removed Values Added
New CVE

Information

Published : 2023-12-14 05:15

Updated : 2024-02-28 20:54


NVD link : CVE-2023-5629

Mitre link : CVE-2023-5629

CVE.ORG link : CVE-2023-5629


JSON object : View

Products Affected

schneider-electric

  • qr150_firmware
  • qh150_firmware
  • qr450_firmware
  • eh45e
  • qp450_firmware
  • jr240_firmware
  • qh450
  • qb150
  • qb150_firmware
  • eh450_firmware
  • eb45e
  • eb45e_firmware
  • qr450
  • qp150
  • qh150
  • er450
  • er45e
  • eb450_firmware
  • eh45e_firmware
  • jr900_firmware
  • eh450
  • jr900
  • qr150
  • qb450
  • er45e_firmware
  • qp450
  • jr240
  • qp150_firmware
  • er450_firmware
  • eb450
  • qh450_firmware
  • qb450_firmware
CWE
CWE-601

URL Redirection to Untrusted Site ('Open Redirect')